Affiliation:
1. School of Information Engineering Chuzhou Polytechnic Chuzhou Anhui 239000 China
2. College of Computer Science Chongqing University Chongqing 400044 China
3. Electronic Government Affairs Department, Information Center of Ministry of Science and Technology Beijing 100862 China
Abstract
The architecture of software‐defined network (SDN)enhances the openness of the network by separating the control and forwarding functions, but the centralized SDN control form is susceptible to distributed denial of service (DDoS) attacks. In this paper, entropy value and back‐propagation neural network (BPNN) were applied to the DDoS attack detection of SDN, and then the two detection algorithms were simulated in MATLAB software and compared with the K‐means algorithm. The results showed that in the face of four DDoS attacks, SYN Flood, ACK Flood, UDP Flood and ICMP Flood, the BPNN‐based DDoS detection had higher accuracy and less detection time; the switch that adopted the BPNN‐based DDoS detection algorithm adjusted the traffic ratio back to normal level faster when facing DDoS attacks, reducing the impact on other switches and maintaining the traffic stability of the network. © 2024 Institute of Electrical Engineer of Japan and Wiley Periodicals LLC.